Description: 
--------------
A security issue in the silex technology DS-600 Firmware version 1.4.1 has been identified, where a remote attacker can trigger a denial of service (DoS) condition by exploiting the "EXEC REBOOT SYSTEM" command through the UDP service on port 19540. 
This vulnerability, tracked as CVE-2024-24487, arises from incorrect access control measures, allowing attackers with network access to forcibly reboot the device by sending specially crafted UDP packets. 


Timeline:
---------
16/01/2024 Vulnerability Discovered
18/01/2024 An email was sent to the vendor support email
19/01/2024 Received a reply from the vendor asking for the vulnerability details, details were shared
22/01/2024 Assigned CVE was shared with the vendor and asked for the remediation timeline - no response from the vendor
01/02/2024 A follow-up email was sent
28/3/2024 No response from the vendor - Vuln released